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AMENDMENTS TO THE SPECIFICATION 

Please amend the specification as indicated hereafter. It is beheved that the 
following amendments and additions add no new matter to the present application. 

In the Title: 

Please replace the title with the following new title: 
AUTHENTICATION METHOD IN A PRINTING ENVIRONMENT 

In the Abstract: [Use strikethrough for deleted matter and underlined for added 
matter.] 

Please replace the pending abstract with the newly-submitted abstract attached 
herewith on a separate sheet. 

In the Specification: [Use Gtrikothrough for deleted matter (or double square brackets 
"[[]]" if the strikethrough is not easily perceivable, i.e., "4" or a punctuation mark) 
and underlined for added matter.] 

Please amend the paragraph starting on p. 10, line 28 as follows: 

The unique identifier is preferably an alphanumeric code and the device preferably 
further comprises an input module for inputting the code to access the relevant entry in 
the audit log. This enables stored information about a particular printed out document to 
be obtained by use of the unique identifier [[on]] or printed on the document itself. 
There is no need to have the document present, only the identifier is required. This also 
enables the exact machine from which a document originated to be identified, such that 
any further details regarding the document stored at the machine can be accessed. 

Please amend the paragraph starting on p. 11, line 13 as follows: 

It is often the case that fax numbers of certain fax machines are only available to 
several people within an organisation as those fax machines should only [[to]] be used 
for communications from specified sources. However, it is often difficult to ensure 
that only specified sources will transmit to the fax machine and proving the identity of 
the source has not been possible before. 
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Please amend the paragraph starting on p. 15, line 26 as follows: 

For each public key 20 stored in the LDAP database 22, there is a corresponding single 
private key 26 which is owned by the individual themselves. This private key 26 is 
provided on an intelligent portable store such as a smart card 28, which the individual 
keeps personal possession of. The smart card 28 not only contains the private key 26, 
but also an algorithm for encoding or decoding data using the private key 26. The 
private key 26 enables the intended recipient to uniquely identify themselves to the 
receiving fax machine 16 in order to rec e iv e d receive the fax document 24, as will be 
described in detail later. 

Please amend the paragraph starting on p. 18, line 8 as follows: 

Referring now to Figure 2b, the process of receiving the fax document 24 and providing 
it to the intended recipient is now described. The receiving fax machine (RFM) 16 
receives at 52 the encrypted fax document 24, the intended recipient's certificate 18 and 
the encrypted session key 25, and places these in the store 30. The receiving fax 
machine 16 then requests at 54 the intended recipient to input their smart card 28 
(containing their private key 26) into the smart card reader 32. More specifically, this is 
carried out by the certificate 18, which contains the name of the intended recipient, 
being extracted from the received information and the name being displayed on the 
receiving fax machine 16. However, it is to be appreciated there are various different 
viable ways in which the intended recipient could be notified that there is a fax for them. 

Please amend the paragraph starting on p. 20, line 1 as follows: 

The receiving fax machine 16 is programmed to store each of the received certificates 18 
and to request each of the intended recipients of the group to prove their identity to the 
receiving fax machine 16 by presentation of their respective smart cards 28 possibly 
within a given time period. More specifically, each of the members of the group is 
asked in turn to present their smart keys 28 to the receiving fax machine 16 to decrypt 
the multiple encrypted session key 25. The decryption is carried out on the smart card 
28 itself as described previously. The order in which the members need to present their 
smart cards 28 to the receiving fax machine 16 is the reverse of the order for encoding 
the session key 25, namely starting with the last member of the group and finishing with 
the first. Also the decrypted result received from one member's smart card 28 is 
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provided as the input to the next member's smart card 28 until such time as the muUiple 
layers of encryption of the session key 25 has all been decrypted. At the end of this 
process, the session key 25 is decrypted correctly and can then be used to decrypt 
the received fax document 24 for printing out. Accordingly, all of the intended 
recipients (members of the group) have to be present to enable the fax document 34 to 
be accessed. 

Please amend the paragraph starting on p. 24, line 26 as follows: 

If these two digests are equivalent from the comparison at 128, then the process 
continues and determines at 132 v^hether validation of the sender's certificate is 
required. If no validation is required, then the second part 120 of the process ends at 
134 v^ith the result that sender of the document and its contents can both be relied upon. 
This result is then identified to the recipient by the printing at 136 of a verifying mark 
(not shown) on the printout 34 of the received document 24. However, if validation is 
required as determined at 132, then the receiving fax machine 74 takes steps at 138 to 
check the validity of the certificate 1 8 or a chain of certificates of which the present 
certificate forms a part. These checks can be made on-line to higher and higher 
authorities and may, if necessary, extend all the way to a trusted authority such as 
Verisign. The process of on-line authentication of a certificate is well understood in the 
art and does not require further explanation herein. 

Please amend the paragraph starting on p. 27, line 17 as follows: 

The received NonceA is encrypted at 170 using C's private key (only available at C). 
This can be carried out on a smart card which holds the private key 159 as well as [[a]] 
an encoding/decoding algorithm for example. C then generates a new nonce (labeled as 
NonceC) and sends this at 172 together with the encrypted NonceA and C's digital 
Certificate to A. 

Please amend the paragraph starting on p. 27, line 27 as follows: 

A then decodes at 178 the encrypted NonceA using C's public key (the Public key is 
either obtained from C's Certificate or has previously been stored in A's memory. The 
decrypted version of NonceA is compared at 1 78 to the previously stored version of 
NonceA. If both versions are not equivalent at 180, then an irregularity in the 
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authentication procedure has been detected and the subsequent transmission of a fax 
document between A and C is prevented at 168. Conversely, if both v e rsion versions 
are equivalent at 1 80, then A has proved that that the party who has sent the encrypted 
NonceA is the owner of C's private key, namely C and so commences its response 
procedure. 

Please amend the paragraph starting on p. 28, line 8 as follows: 

The response procedure commences at 1 82 with A encrypting the received NonceC with 
its own private key 159. Again the private key 159 may be provided on a smart card as 
in the previous embodiments. A then sends at 184 the encrypted NonceC to C. On 
receipt, C decodes at 186 the encrypted NonceC using A's public key (available via A's 
digital Certificate or previously stored) and compares this at 186 with the previously 
stored version of NonceC. If at 188 the decrypted version of NonceC is not equivalent 
to the stored original, then an irregularity in the authentication procedure 160 has been 
detected and the subsequent transmission of a fax document between A and C is 
prevented at 168. Otherwise, if both v e rsion versions are equivalent at 188, then C has 
proved feat-that the party who has sent the encrypted NonceC is the owner of A's private 
key 159, namely A. Accordingly, the authentication procedure 160 is now complete and 
the document can be faxed at 190 between A and C. 

Please amend the paragraph starting on p. 28, line 20 as follows: 

The use of certificates 156 in the above procedure not only enables a local check to be 
made as to the membership of the closed group of the fax machine 152 wishing to 
commence communication but also enables each fax machine 152 to carry out on-line 
authentication checks to establish as an additional check whether each participating 
fax machine 152 is who it claims to be. Also this on-line authentication procedure 
provides an up-to-date validity check on the status of the fax machines' Certificates 
156 if required. 



